Server Management - Remote Server Management
1828411 Members
3610 Online
109977 Solutions
New Discussion

how to generate self signed certificate for iLo2 with openssl?

 
Rustio
Occasional Visitor

how to generate self signed certificate for iLo2 with openssl?

Hi to all,

I'm trying to update my iLO2 (Firmware 2.27) SSL on 2 ProLiant DL380 G5 and ProLiant DL360 G6 certificate because the actual certificate is too old and weak and i receive errors when i connect to it.

what i have tried:

1- Connected to my ilo trough web interface and generated CSR copied text and saved to ilo.csr on my workstation

2 - installed openssl on my workstation (windows machine) and generated an RSA key

Text
openssl genrsa -des3 -out custom.key 2048

3 - removed passphrase from the key

Text
openssl rsa -in custom.key -out customNoPwd.key

4 - generated certificate

Text
openssl x509 -req -days 3650 -in ilo.csr -signkey customNoPwd.key -out ilo.pem
but when i try to import my certificate i get the following error:
Import Certificate - Failure X.509 Certificate Import Error
The Certificate could not be imported from the supplied X.509 Certificate data.

Check the following:
- Make sure that the input text was base64 encoded X.509 Certificate data.
- Make sure that the input X.509 Certificate data was intended for this server (not another server).

The certificate is 2KB i have read that the maximum is 3KB and I have however already tried to use a 1024 key...what i am doing wrong??

P.S. sorry for my english

1 REPLY 1
TVVJ
HPE Pro

Re: how to generate self signed certificate for iLo2 with openssl?

Hello,

 

You may refer to the following discussion on the community about the issue presented by you at:

https://community.hpe.com/t5/Server-Management-Remote-Server/Importing-SSL-Certificate-AND-Private-Key/td-p/6935825

 

Regards,

Vijayasarathy



I work at HPE
HPE Support Center offers support for your HPE services and products when and how you need it. Get started with HPE Support Center today.
[All opinions expressed here are mine, and not official statements on behalf of Hewlett Packard Enterprise]
Accept or Kudo